2 3 4 5 6 7 8 9 10 Root account in Amazon Web Services (AWS), most critical with restrictive access. Security account for security activities, responsible for maintenance of the overall security posture of all accounts as it scans for vulnerabilities. Centralized network connections from onpremises to share with other accounts. Control communication between accounts with AWS Transit Gateway. Enable users to interact with data to develop machine learning (ML) models with the correct security and data access. Publish final models with Amazon SageMaker. Centralized logs for monitoring across all accounts to audit activities. Any tools that the customer needs to present data, including third party or AWS tools. DevOps flows to deploy code as a service, and artifacts on the ingestion and analytics accounts. Users who need Dev/Test analytics models with the correct security and data governance. Centralized data services with governance and API management. Run queries against petabytes of data in Amazon S3 through Amazon Redshift Spectrum. Transform data with Amazon EMR. Secure repositories with AWS Lake
